Last updated: 5 August 2025 (AEST)

1. Who we are

Sycamore Legal Pty Ltd (we, us, our) is a commercial law practice based in Sydney, NSW. Our contact details are: Suite 1A, Level 13, 465 Victoria Avenue, Chatswood NSW 2067, enquiry@sycamorelegal.com.au, (02) 8311 9992.

2. Our commitment to privacy

We manage personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), as overseen by the Office of the Australian Information Commissioner (OAIC). We also comply with our professional confidentiality obligations under the Legal Profession Uniform Law Australian Solicitors’ Conduct Rules 2015.

3. What personal information we collect

The types of information we collect depend on your dealings with us and may include:

  • Identification and contact details (name, address, email, phone).
  • Matter information (instructions, correspondence, documents, witness materials, corporate records).
  • Sensitive information where necessary and permitted (e.g., health, ethnicity, criminal history) relevant to a matter.
  • Billing and payment details.
  • Website and communications data (IP address, device/browser data, page analytics, cookies/trackers, newsletter preferences, WeChat handle if you contact us via WeChat).

Where lawful and practical (APP 2), you may interact with us anonymously or using a pseudonym (e.g., general enquiries), but we may be unable to act or respond substantively without identifying information.

4. How we collect personal information

  • Directly from you (in person, by phone/video, email, WeChat, website forms, events).
  • From third parties with authority or where legally permitted (referrers, counterparties, other advisors, experts, governmental bodies, public registries).
  • From our website and online services via cookies/analytics (see Section 11).

5. Why we collect, use and disclose personal information

We use your information to:

  • provide and improve our legal services (including conflict checks), manage our client relationship and trust/commercial accounts, and conduct our practice;
  • correspond with you and others, brief counsel/experts, make filings, and engage service providers;
  • comply with legal, regulatory and professional obligations (including anti-money laundering and sanctions screening where applicable);
  • send updates, insights, and invitations (you can opt out at any time); and
  • operate, secure and improve our website/IT systems.

We only use or disclose personal information for the purposes described above, for related purposes you would reasonably expect, with your consent, or as otherwise permitted or required by law (APP 6/7).

6. Sensitive information

We only collect sensitive information where reasonably necessary for our services and permitted by law (e.g., with your consent or where required/authorised).

7. Cross-border disclosures

Given our cross-border practice, we may disclose personal information to recipients in other jurisdictions as needed for your matter—commonly Hong Kong and Mainland China (e.g., counsel, expert witnesses, counterparties, agents, or data hosting). Before doing so, we take reasonable steps under APP 8 to ensure the recipient will handle your information consistently with the APPs or that another exception applies, and we use appropriate contractual and security safeguards.

8. Data security and retention

We take reasonable steps (administrative, technical, and physical controls) to protect personal information from misuse, interference, loss, and unauthorised access, modification or disclosure (APP 11). We retain matter files in line with legal and professional requirements and our file-retention policy, and securely destroy or de-identify information when no longer required (subject to our duties and legal holds).

9. Notifiable Data Breaches (NDB)

If an eligible data breach occurs (likely to cause serious harm), we will assess promptly and, where required, notify affected individuals and the OAIC and provide guidance on steps you should take.

10. Access and correction

You may request access to your personal information and ask us to correct it if it is inaccurate, out-of-date, incomplete, irrelevant or misleading (APP 12/13). We will provide access or make corrections within a reasonable time (subject to permitted exceptions), and we may ask you to verify your identity.

11. Our website, cookies and analytics

  • We use cookies and similar technologies to operate our site, remember preferences, and understand how visitors use our pages.
  • We may use analytics tools (e.g., standard WordPress/third-party analytics) that collect information such as IP address, device/browser type, pages viewed and session duration to help us improve the site.
  • You can control cookies via your browser settings; blocking some cookies may affect site functionality.

12. Direct marketing

We may send you legal updates or event invitations if you are our client or you have opted in. You can opt out at any time using the unsubscribe link or by contacting us (see Section 1).

13. Third-party services and links

Our site and communications may include links to third-party sites or services (e.g., WeChat, video platforms). Those services are governed by their own privacy practices; we encourage you to review their policies.

14. Children

Our services are directed to business and adult clients. We do not knowingly collect personal information from children without appropriate consent and legal basis.

15. Complaints and how we will resolve them

If you have a privacy concern, please contact us first (see Section 1). We aim to respond within 30 days. If you are not satisfied, you can lodge a privacy complaint with the Office of the Australian Information Commissioner (OAIC) (generally after first contacting the organisation). See the OAIC’s guidance on complaining to an organisation and lodging a privacy complaint. OAIC contact information is available on their website.

16. Changes to this policy

We may update this policy from time to time to reflect legal, technical or business developments. The updated version will be posted on our website with a new “Last updated” date.